[akskakskaksk]

Crazy how we are talking about this like a weather event, like it's just an unfortunate outage. Cyberattacked by whom? How? What vulnerabilities allowed the intrusion and what organizational processes created those vulnerabilities?

Naturally the people who know these answers are very busy today but hopefully we will hear more soon.

[93po]

> Cyberattacked by whom?

Whoever is politically convenient

> How?

Probably social engineering but possibly poor security practices

> What vulnerabilities allowed the intrusion

Probably poor security training on employees and poor safeguards, but possibly also poor security practices in software engineering

> what organizational processes created those vulnerabilities?

Leadership with poor priorities and shortsightedness for the sake of short-term profit

[ufmace]

That probably is the better way to see it at this point. There's already enough bad actors out there that it's not really worth keeping track.

I'd be willing to bet that they have comprehensively sloppy and terrible infosec practices and that we'll never hear any details about it - most of their customers wouldn't understand, and it would only expose how bad they are at all of this if they did.

[rootusrootus]

> Naturally the people who know these answers are very busy today but hopefully we will hear more soon.

Most of us don't actually know the answer, to be honest. They're not telling 6500 employees what really happened. I know more than you, but not that much more, and I'm definitely not saying anything about it.